Update: Microsoft replied to me and fixed the link. see screenshot below
WATCH Microsoft Exchange URL Hacked
If you have Exchange 2010 SP3 and planning to download the latest Rollup , Google will take you to the following link
https://www.microsoft.com/en-us/download/details.aspx?id=100910
Once you click on that link to download the RollUp update, You might want to check the system requirements links and that would list two main links
The Exchange 2010 Prerequisites link will first redirect you to this URL which has an expired certificate.
http://www.microsoftpinpoint.com/
And that will then redirect you to this link (Seems to be a Chinese website)
Luckily the antivirus managed to catch and block this page however, on any server that’s not running any antivirus this would certainly infect the server.
Phishing Alert!
Video here
Contacting Microsoft
After I got in contact with Microsoft about the issue. Microsoft replied stating they have informed their security team and fixed the issue.
